Identity resolution after the third-party cookie
Without the third-party cookie, the loyalty card becomes the spine of identity. Provided you can actually resolve the same customer across channels.
The slow death of the third-party cookie isn’t a media problem: it’s a transfer of power. With no external tracking signal, durable identity gets rebuilt from what the enterprise owns outright — and the strongest anchor is the loyalty identifier. The member who scans a card or opens the app hands you a deterministic stitch across their sessions, devices, and channels. That’s the asset the end of the cookie suddenly makes central.
But owning an identifier isn’t resolving it. Identity resolution is the ability to recognize that Tuesday’s in-store shopper, Thursday’s anonymous web session, and Sunday’s email open are the same person — and to do it with enough confidence to activate without targeting the wrong customer. Most programs fail here: they hold one card per household, a shared email, offline transactions never wired to digital behavior. The identifier exists; the resolution doesn’t.
The hierarchy is clear. Deterministic resolution — matching on an authenticated, consented identifier — is the gold standard, because it survives an audit and feeds a credible media network. Probabilistic resolution has a complementary role but should never be the foundation of a regulated purpose. And all of it collapses if consent wasn’t captured purpose by purpose: under Law 25, unconsented resolution is a liability, not an asset.
For the operator, the consequence is plain: the martech investment to prioritize isn’t yet another activation platform, but the resolution layer that wires loyalty identity to digital behavior. That layer decides whether your first-party data is activatable at scale or merely stored. In the post-cookie era, the program that resolves its identity cleanly holds the advantage everyone else is trying to buy back at a premium.